Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php require_once('Connections/CAIP.php'); ?>
- <?php
- if (!function_exists("GetSQLValueString")) {
- function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
- {
- if (PHP_VERSION < 6) {
- $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
- }
- $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
- switch ($theType) {
- case "text":
- $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
- break;
- case "long":
- case "int":
- $theValue = ($theValue != "") ? intval($theValue) : "NULL";
- break;
- case "double":
- $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
- break;
- case "date":
- $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
- break;
- case "defined":
- $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
- break;
- }
- return $theValue;
- }
- }
- mysql_select_db($database_CAIP, $CAIP);
- $query_login = "SELECT * FROM utilizadores";
- $login = mysql_query($query_login, $CAIP) or die(mysql_error());
- $row_login = mysql_fetch_assoc($login);
- $totalRows_login = mysql_num_rows($login);
- mysql_select_db($database_CAIP, $CAIP);
- $query_Recordset1 = "SELECT * FROM textos";
- $Recordset1 = mysql_query($query_Recordset1, $CAIP) or die(mysql_error());
- $row_Recordset1 = mysql_fetch_assoc($Recordset1);
- $totalRows_Recordset1 = mysql_num_rows($Recordset1);
- ?>
- <?php
- // *** Validate request to login to this site.
- if (!isset($_SESSION)) {
- session_start();
- }
- $loginFormAction = $_SERVER['PHP_SELF'];
- if (isset($_GET['accesscheck'])) {
- $_SESSION['PrevUrl'] = $_GET['accesscheck'];
- }
- if (isset($_POST['user'])) {
- $loginUsername=$_POST['user'];
- $password=$_POST['password'];
- $MM_fldUserAuthorization = "nivel";
- $MM_redirectLoginSuccess = "company.php";
- $MM_redirectLoginFailed = "company.php";
- $MM_redirecttoReferrer = true;
- mysql_select_db($database_CAIP, $CAIP);
- $LoginRS__query=sprintf("SELECT * FROM utilizadores WHERE utilizador=%s AND password=%s AND id_utilizador=1 ",
- GetSQLValueString($loginUsername, "text"), GetSQLValueString($id_utilizador, "int"), GetSQLValueString($password, "text"));
- $LoginRS = mysql_query($LoginRS__query, $CAIP) or die(mysql_error());
- $loginFoundUser = mysql_num_rows($LoginRS);
- if ($loginFoundUser) {
- echo mysql_error();
- $loginStrGroup = mysql_result($LoginRS,0,'nivel');
- $userid = mysql_result($LoginRS,0,'id_user');
- //declare two session variables and assign them
- $_SESSION['MM_Username'] = $loginUsername;
- $_SESSION['MM_UserGroup'] = $loginStrGroup;
- $_SESSION['MM_ID'] = $userid;
- if (isset($_SESSION['PrevUrl']) && true) {
- $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
- }
- header("Location: " . $MM_redirectLoginSuccess );
- }
- else {
- header("Location: ". $MM_redirectLoginFailed );
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement